How To: Add and Map Firewall Credentials
NOTE: Previously, firewall integrations were found under the Integrations menu; this has been moved to the Discovery Settings and Credentials section in the new portal.
How To Add Firewall Creds - Table of Contents
Overview
In this how-to, we will cover the process of adding firewall credentials to a company for firewall scanning.
🔐 Supported Firewall Integrations
ConnectSecure integrates with industry-leading firewalls to enhance visibility and streamline threat detection.
The following models are currently supported:
🧱 Vendors & Models
Arista
Aruba
Cisco ASA
Draytek
Firewalla
Fortigate
LANCOM
MikroTik
OPNsense
PaloAlto
pfSense
SonicWall TZ
Sophos UTM
Sophos XG / Sophos XGS
Ubiquiti_Edgerouter
Ubiquiti UDM Pro
WatchGuard
Zyxel
Zyxel ATP
Zyxel USGFLEX
Prerequisites
Firewall Host Name or IP
Remote Access Port (HTTPS or SSH)
Username and Password
API Key(s) - some of the integrations will require this, and some will not
Some Firewalls Require Additional Configuration directly in the Firewall Settings.
Fortinet/FortiGate - https://cybercns.atlassian.net/wiki/x/uYAKi
Sophos XG - https://cybercns.atlassian.net/wiki/x/8gAKi
Adding Firewall Credentials
Select any company from the selector.
Click on the Overview/Agents > Discovery settings menu:
Tap on the Add button under the Credentials section.
Give the credentials a name, select OS Type of Firewall OS, Credential Type of Firewall Credential; then you can select from the populated list of Firewall Types.
Each firewall type will require it’s own unique authentication parameters; please select from the list and provide the required fields.
Aruba Firewall assets will not appear under the “Firewall” asset category.
They will continue to be listed under “All Assets” in the portal.
Mapping Firewall Credentials
After creating your firewall credentials, you must associate them with one of your available Probe agents to utilize them during a firewall scan.
Navigate to Overview/Agents > Discovery:
Navigate to Probe Agents, then tap the three-dot Action menu.
Select the Map Discovery & Credentials option.
Under the Credentials drop-down, select the firewall credentials previously configured.
Tap on Save to complete, or Cancel to back out with no changes.
Validating Firewall Credentials
Once your Firewall Credentials are configured in Discovery Settings and mapped to the correct Probe Agent, the next step is to validate them.
To do this, go to the Company Overview, open the Probe Agent section, and select the agent’s three‑dot action menu. Choose Scan > Validate Credential Scan.
After triggering the Credential Validation Scan, you can monitor its progress in the Jobs section of the Portal.
Select the date and timestamp of the Validate Credential Scan to view detailed progress.
When the scan completes, return to Discovery Settings > Credentials to check the result. A green checkmark indicates the credentials validated successfully, while a red X means validation failed.
Run Firewall Scan
To run a firewall scan, you must first have the credentials created and mapped as described above.
Navigate to the Overview > Agents >Probe Agents menu and tap on the three-dot Action menu.
Tap the Scan option.
Select the Firewall Scan option.
Check out https://cybercns.atlassian.net/wiki/x/aIFTjw page for additional details on firewall assets.
Need Support?
Contact our support team by sending an email to support@connectsecure.com or by visiting our Partner Portal, where you can create, view, and manage your tickets.
https://cybercns.freshdesk.com/en/support/login